Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
In our EDR detection organization, we are looking for an experienced manager for our malware and EDR rules detection team.
In this position, you will oversee a group of skilled Windows, Linux, and macOS detection researchers who work to make sure our clients have access to the greatest visibility, protection, and detection capabilities.
Responsibilities:
The quality and correctness of the deliverables you supply will be your responsibility, and you will own and be accountable for them.
Work closely with other teams to integrate new findings from research into our endpoint security platform.
Provide mentorship and technical advice to strengthen and empower the team.
Work with other teams and individuals around the organization to coordinate the team's efforts, deliverables, and requirements.
Plan and carry out the team's projects in accordance with its regular objectives and responsibilities.
To guarantee that goals and priorities are understood by cross-functional teams, communicate effectively and clearly.
Would be doing a deep research in ongoing trends and authors detection rules around them.
What ought you to carry?
Prior experience leading research teams or in EDR detection.
Outstanding knowledge of the internals of the OS (Windows, macOS, and Linux).
More than ten years of experience with EDR behavior-based rules and malware analysis, both statically and dynamically.
Knowledge of the world of malware (its methods, workings, and notorious families).
Familiarity with using YARA or other engines to create detection rules.
Demonstrated expertise in x86/x64 or ARM architecture reverse engineering.
Knowledgeable about using reverse engineering and analysis tools, including IDA, Ghidra, WinDBG, SysInternals, lldb, gdb, and others.
Advantages:
Knowledge of the internals of current AVs.
Knowledge of attack models and their TTPs.
Knowldege of MITRE Eval would be plus.
Being an Equal Employment Opportunity and Affirmative Action employer makes Qualys proud. We don't discriminate against people because of their race, religion, color, national origin, gender (including during pregnancy, childbirth, or other related medical conditions), sexual orientation, gender identity, gender expression, age, or any other legally protected trait that may apply.
Top Skills
What We Do
Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of disruptive cloud-based security, compliance and IT solutions with more than 10,000 subscription customers worldwide, including a majority of the Forbes Global 100 and Fortune 100. Qualys helps organizations streamline and automate their security and compliance solutions onto a single platform for greater agility, better business outcomes, and substantial cost savings.
The Qualys Cloud Platform leverages a single agent to continuously deliver critical security intelligence while enabling enterprises to automate the full spectrum of vulnerability detection, compliance, and protection for IT systems, workloads and web applications across on premises, endpoints, servers, public and private clouds, containers, and mobile devices. Founded in 1999 as one of the first SaaS security companies, Qualys has strategic partnerships and seamlessly integrates its vulnerability management capabilities into security offerings from cloud service providers, including Amazon Web Services, the Google Cloud Platform and Microsoft Azure, along with a number of leading managed service providers and global consulting organizations. For more information, please visit http://www.qualys.com
